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DETAILED ACTION 
Response to Amendment 

1. Receipt of Applicant's Amendment, filed on 03/14/2007, is acknowledged. The 
amendment includes the cancellation of claims 3, 15, 22, 29, 34, 41 , and 53, the 
amending of claims 1, 13, 18, 20, 32, 37, 39, and 56, and the addition of claims 58-61. 

Claim Objections 

2. The objections raised on the office action mailed on 09/19/2006 have been 
overcome by applicants amendments received on 03/14/2007. 

Claim Rejections - 35 USC § 112 

3. The following is a quotation of the second paragraph of 35 U.S.C. 112: 
The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter which the applicant regards as his invention. 

4. Claim 1 recites the limitation "wherein the client terminal" in page 2. There is 
insufficient antecedent basis for this limitation in the claim. 

Claims 1-2, and 4-12 are rejected for incorporating the deficiencies of 
independent claim 1. 

Claim Rejections - 35 USC §103 

5. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
This application currently names joint inventors. In considering patentability of 
the claims under 35 U.S.C. 103(a), the examiner presumes that the subject matter of 
the various claims was commonly owned at the time any inventions covered therein 
were made absent any evidence to the contrary. Applicant is advised of the obligation 
under 37 CFR 1 .56 to point out the inventor and invention dates of each claim that was 
not commonly owned at the time a later invention was made in order for the examiner to 
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consider the applicability of 35 U.S.C. 103(c) and potential 35 U.S.C. 102(e), (f) or (g) 
prior art under 35 U.S.C. 103(a). 

6. Claims 1-2, 4-14, 16-17, 19-21, 23-28, 30-33, 35-36, 38-40, 42-52, 54-55, and 
57-67 are rejected under 35 U.S.C. 103(a) as being unpatentable over Deo et al. (U.S. 
Patent 6,970,891 ) and in view of Carlisle et al. (U.S. Patent 5,649, 1 1 8). 

7. Regarding claim 1, Deo teaches a system comprising: 

A) a client having a plurality of applications residing thereon (Column 3, lines 44-54); 
and 

B) a secure token having a storage architecture (Column 6, lines 27-34), wherein the 
storage architecture includes: 

D) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2) 

F) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2); and 

G) one or more cells under each cell group, each cell having one or more associated 
attributes, wherein the one or more attributes associated with a cell are used to control 
access to that cell by the plurality of applications (Column 3, lines 64-67-Column 4, lines 
1-6, Column 4, lines 37-44, Figure 2). 

H) wherein the one or more attributes permit a first application to access after a first 
access condition is satisfied (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, 
lines 37-44, Figure 2); 

I) wherein the one or more attributes permit a second application to access after a 
second access condition is satisfied (Column 3, lines 64-67-Column 4, lines 1-6, 
Column 4, lines 37-44, Figure 2); 

J) wherein the first access condition is different from the second access condition 
(Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 2). 

The examiner notes that Deo teaches "a client having a plurality of 
applications residing thereon" as "The volatile files 122 make it possible for multiple 



Application/Control Number: 10/656,858 
Art Unit: 2168 



Page 4 



resident applications 112, as well as nonresident applications 116 that are downloaded 
for a particular sessions, to share the same data in volatile memory 106 (assuming the 
applications are authorized)" (Column 3, lines 49-54). The examiner further notes that 
Deo teaches "a secure token having a storage architecture" as "With this 
architecture, volatile data kept in volatile memory is no longer bound to a single 
application, but can be accessed by multiple applications" (Column 6, lines 27-29). The 
examiner further notes that Deo teaches "wherein the one or more attributes are 
used to control access by the plurality of applications" as "an access control list 
(ACL) can be associated. ..gain access to and perform file operations on the volatile 
files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes 
an ACL (access control list) table 204 that performs the security function of determining 
which users and/or applications have access to which files... and the like" (Column 4, 
lines 37-42). The examiner further notes that Deo teaches "one or more cells under 
each cell group, each cell having one or more associated attributes, wherein the 
one or more attributes associated with a cell are used to control access to that 
cell by the plurality of applications" as "an access control list (ACL) can be 
associated... gain access to and perform file operations on the volatile files 122" 
(Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes an ACL 
(access control list) table 204 that performs the security function of determining which 
users and/or applications have access to which files... and the like" (Column 4, lines 37- 
42). The examiner further notes that Deo teaches "wherein the one or more 
attributes permit a first application to access after a first access condition is 
satisfied" as "an access control list (ACL) can be associated... gain access to and 
perform file operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 
1-5) and "The file system 118 includes an ACL (access control list) table 204 that 
performs the security function of determining which users and/or applications have 
access to which files... and the like" (Column 4, lines 37-42). The examiner further 
notes that Deo teaches "wherein the one or more attributes permit a second 
application to access after a second access condition is satisfied" as "an access 
control list (ACL) can be associated... gain access to and perform file operations on the 
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volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 
includes an ACL (access control list) table 204 that performs the security function of 
determining which users and/or applications have access to which files... and the like" 
(Column 4, lines 37-42). The examiner further notes that Deo teaches "wherein the 
first access condition is different from the second access condition" as "an 
access control list (ACL) can be associated... gain access to and perform file operations 
on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file 
system 118 includes an ACL (access control list) table 204 that performs the security 
function of determining which users and/or applications have access to which files... and 
the like" (Column 4, lines 37-42). The examiner further notes that Figure 2 of Deo 
clearly shows an ACL table 204 with differing permission levels (see 1 and 4). The 
examiner further notes that App1 and Userl have different access conditions as they 
have different ACL values. 

Deo does not explicitly teach: 
C) a directory and one or more attributes associated with the directory; 
E, H, & I) one or more cell groups under the directory each cell group having one or 
more associated attributes; 

I) wherein one or more attributes associated with the directory, cell group, or cell are 
associated with a passcode or key ; 

J) wherein the client terminal is adapted to use the passcode or key to access data in 
the directory, cell group, or cell. 

Carlisle, however, teaches "a directory and one or more attributes 
associated with the directory" as "Multi-user capability is provided by allowing Root to 
create a subdirectory below the root directory... only in the "passwd" file" (Column 5, 
lines 20-30), "one or more cell groups under the directory each cell group having 
one or more associated attributes" as "Multi-user capability is provided by allowing 
Root to create a subdirectory below the root directory... only in the "passwd" file" 
(Column 5, lines 20-30), " wherein one or more attributes associated with the 
directory, cell group, or cell are associated with a passcode or key " as "FIG. 2 
illustrates a structure that responds to this sensitivity of service providers. According to 
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the structure of FIG. 2, Root owns the root directory and any number of files (directory 
files or normal files) that it wishes to create. For example, FIG. 2 includes a root 
directory file 10 and below it there are ".profile" file 11, "passwd" file 12, "log" file 17, 
"filex" file 13, "filey" file 14, and "ID" file 18. A number of subdirectories are also found 
below root, with each being used as the "HOME" directory of a user (service provider), 
and also creates a password file for each such user HOME directory. For example, FIG. 
2 includes a directory file 15, named "htb" (the smart card's Holder), a directory file 20 
named "bankA", and a directory file 25 named "airlineA". Each one of the directories 
includes a "passwd" file (16, 21, and 26, respectively) below the associated user's 
HOME directory, as well as a ".profile" file. This placing of the password files has some 
advantages but it is not a requirement. Importantly, ownership of each such password 
files is assigned to the user associated with that file and the directory above it. It may 
also be advantageous to grant ownership of files (directories) 15, 20 and 25 to the 
respective users" (Column 6, lines 30-51), and " wherein the client terminal is 
adapted to use the passcode or key to access data in the directory, cell group, or 
cell " as "Multi-user capability is provided by allowing Root to create a subdirectory 
below the root directory... only in the "passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claims 2, 21, and 40, Deo further teaches a system, secure token, 
and method comprising: 

A) wherein the one or more attributes permit access to one application and deny 
access to another application (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, 
lines 37-44, Figure 2). 

The examiner further notes that Deo teaches "wherein the one or more 
attributes permit access to one application and deny access to another 
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application" as "an access control list (ACL) can be associated... gain access to and 
perform file operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 
1-5) and "The file system 118 includes an ACL (access control list) table 204 that 
performs the security function of determining which users and/or applications have 
access to which files... and the like" (Column 4, lines 37-42). The examiner further 
notes that Figure 2 of Deo clearly shows an ACL table 204 with differing permission 
levels (see 1 and 4). 

Deo does not explicitly teach: 
A) associated with the directory. 

Carlisle, however, teaches "associated with the directory" as "Multi-user 
capability is provided by allowing Root to create a subdirectory below the root 
directory... only in the "passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claims 4, 23, and 42, Deo further teaches a system, secure token, 
and method comprising: 

A) wherein the one or more attributes associated with the cell permit access to that cell 
by one application and deny access to that cell to another application (Column 3, lines 
64-67-Column 4, lines 1-6, Column 4, lines 37-44). 

The examiner further notes that Deo teaches "wherein the one or more 
attributes associated with the cell permit access to that cell by one application 
and deny access to that cell to another application" as "an access control list (ACL) 
can be associated... gain access to and perform file operations on the volatile files 122" 
(Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes an ACL 
(access control list) table 204 that performs the security function of determining which 
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users and/or applications have access to which files... and the like" (Column 4, lines 37- 
42). 

Regarding claims 5, 24, and 43 Deo further teaches a system, secure token, and 
method comprising: 

A) wherein one or more additional cell groups are added to the directory subsequent to 
issuance of the secure token to a token holder (Column 7, lines 55-67). 

The examiner further notes that Deo teaches "wherein one or more additional 
cell groups are added to the directory subsequent to issuance of the secure 
token to a token holder" as "ScwCreateDir Creates a directory with the given access 
control list (ACL) file" (Column 7, lines 57-58) 

Regarding claims 6, 25, and 44, Deo does not explicitly teach a system, secure 
token, and method comprising: 

A) wherein ownership of one of the one or more cell groups is determined subsequent 
to issuance of the secure token to a token holder. 

Carlisle, however, teaches "wherein ownership of one of the one or more 
cell groups is determined subsequent to issuance of the secure token to a token 
holder" as "First, O, controls the establishment of a service provider's directory" 
(Column 14, lines 63-64). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claims 7, 26, and 45, Deo does not explicitly teach a system, secure 
token, and method comprising: 

A) wherein ownership of one of the one or more cell groups is modified subsequent to 
issuance of the secure token to a token holder. 
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Carlisle, however, teaches "wherein ownership of one of the one or more 
cell groups is modified subsequent to issuance of the secure token to a token 
holder" as "First, O, controls the establishment of a service provider's 
directory... through the operating system's design, O can control the amount of memory 
that each service provider has access to, and thus can control the number of service 
providers that can "coexist" on a smart card"" (Column 14, lines 63-67-Column 15, lines 
1-10). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claims 8, 27, and 46, Deo further teaches a system, secure token, 
and method comprising: 

A) wherein one or more additional cells are added to a cell group subsequent to 
issuance of the secure token to a token holder (Column 6, lines 62-67). 

The examiner notes that Deo teaches "wherein one or more additional cells 
are added to a cell group subsequent to issuance of the secure token to a token 
holder" as "At block 304, in response to a request from an authorized application to 
create or open a file, the file system 118 creates or opens a file and obtains a handle to 
that file" (Column 6, lines 62-67). 

Regarding claims 9, 28, and 47, Deo further teaches a system, secure token, 
and method comprising: 

A) wherein the one or more attributes associated are modified in terms of permitting or 
denying access by the plurality of applications (Column 4, lines 37-44). 

The examiner notes that Deo teaches "wherein the one or more attributes 
associated with the directory are modified in terms of permitting or denying 
access to the directory by the plurality of applications" as "the file system includes 
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an ACL (access control list) that performs the security function of determining which 
users and/or applications have access to which files" (Column 4, lines 37-44). 

Deo does not explicitly teach: 
A) with the directory. 

Carlisle, however, teaches "with the directory" as "Multi-user capability is 
provided by allowing Root to create a subdirectory below the root directory... only in the 
"passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1 , lines 59-62). 

Regarding claims 10 and 48, Deo further teaches a system and method 
comprising: 

A) wherein the one or more attributes associated are modified in terms of permitting or 
denying access by the plurality of applications (Column 4, lines 37-44). 

The examiner notes that Deo teaches "wherein the one or more attributes 
associated with a cell group are modified in terms of permitting or denying 
access to that cell group by the plurality of applications" as "the file system 
includes an ACL (access control list) that performs the security function of determining 
which users and/or applications have access to which files" (Column 4, lines 37-44). 

Deo does not explicitly teach: 
A) with the cell group. 

Carlisle, however, teaches "with the cell group" as "Multi-user capability is 
provided by allowing Root to create a subdirectory below the root directory... only in the 
"passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
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levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1 , lines 59-62). 

Regarding claims 1 1 , 30, and 49, Deo further teaches a system, secure token, 
and method comprising: 

A) wherein the one or more attributes associated with the cell are modified in terms of 
permitting or denying access to that cell by the plurality of applications (Column 4, lines 
37-44). 

The examiner notes that Deo teaches "wherein the one or more attributes 
associated with the cell are modified in terms of permitting or denying access to 
that cell by the plurality of applications" as "the file system includes an ACL (access 
control list) that performs the security function of determining which users and/or 
applications have access to which files" (Column 4, lines 37-44). 

Regarding claims 12, 31, and 50, Deo further teaches a system, secure token, 
and method comprising: 

A) wherein the one or more attributes associated with a cell further control operations 
on contents of that cell by the plurality of applications (Column 4, lines 37-44). 

The examiner notes that Deo teaches "wherein the one or more attributes 
associated with a cell further control operations on contents of that cell by the 
plurality of applications" as "the file system includes an ACL (access control list) that 
performs the security function of determining which users and/or applications have 
access to which files" (Column 4, lines 37-44). 

Regarding claim 13, Deo teaches a system comprising: 

A) a client having a plurality of applications residing thereon (Column 3, lines 44-54); 
and 

B) a secure token having a storage architecture (Column 6, lines 27-34), wherein the 
storage architecture includes: 
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D) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2) 

F) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2); and 

G) one or more cells under each cell group, each cell having one or more associated 
attributes, wherein the one or more attributes associated with a cell are used to control 
access to that cell by the plurality of applications (Column 3, lines 64-67-Column 4, lines 
1-6, Column 4, lines 37-44, Figure 2). 

H) wherein the one or more attributes associated with the cell permit a first set of 
operations on the contents of that cell by a first application (Column 3, lines 64-67- 
Column 4, lines 1-6, Column 4, lines 37-44, Figure 2); 

I) wherein the one or more attributes associated with the cell permit a second set of 
operations on the contents of that cell by a second application (Column 3, lines 64-67- 
Column 4, lines 1-6, Column 4, lines 37-44, Figure 2); 

J) wherein the first access condition is different from the second access condition 
(Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 2). 

The examiner notes that Deo teaches "a client having a plurality of 
applications residing thereon" as "The volatile files 122 make it possible for multiple 
resident applications 1 12, as well as nonresident applications 116 that are downloaded 
for a particular sessions, to share the same data in volatile memory 106 (assuming the 
applications are authorized)" (Column 3, lines 49-54). The examiner further notes that 
Deo teaches "a secure token having a storage architecture" as "With this 
architecture, volatile data kept in volatile memory is no longer bound to a single 
application, but can be accessed by multiple applications" (Column 6, lines 27-29). The 
examiner further notes that Deo teaches "wherein the one or more attributes are 
used to control access by the plurality of applications" as "an access control list 
(ACL) can be associated... gain access to and perform file operations on the volatile 
files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes 
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an ACL (access control list) table 204 that performs the security function of determining 
which users and/or applications have access to which files... and the like" (Column 4, 
lines 37-42). The examiner further notes that Deo teaches "one or more cells under 
each cell group, each cell having one or more associated attributes, wherein the 
one or more attributes associated with a cell are used to control access to that 
cell by the plurality of applications" as "an access control list (ACL) can be 
associated... gain access to and perform file operations on the volatile files 122" 
(Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes an ACL 
(access control list) table 204 that performs the security function of determining which 
users and/or applications have access to which files... and the like" (Column 4, lines 37- 
42). The examiner further notes that Deo teaches "wherein the one or more 
attributes associated with the cell permit a first set of operations on the contents 
of that cell by a first application" as "an access control list (ACL) can be 
associated... gain access to and perform file operations on the volatile files 122" 
(Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes an ACL 
(access control list) table 204 that performs the security function of determining which 
users and/or applications have access to which files... and the like" (Column 4, lines 37- 
42). The examiner further notes that Deo teaches "wherein the one or more 
attributes associated with the cell permit a second set of operations on the 
contents of that cell by a second application" as "an access control list (ACL) can be 
associated... gain access to and perform file operations on the volatile files 122" 
(Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes an ACL 
(access control list) table 204 that performs the security function of determining which 
users and/or applications have access to which files. ..and the like" (Column 4, lines 37- 
42). The examiner further notes that Deo teaches "wherein the first access 
condition is different from the second access condition" as "an access control list 
(ACL) can be associated... gain access to and perform file operations on the volatile 
files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes 
an ACL (access control list) table 204 that performs the security function of determining 
which users and/or applications have access to which files... and the like" (Column 4, 
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lines 37-42). The examiner further notes that Figure 2 of Deo clearly shows an ACL 
table 204 with differing permission levels (see 1 and 4). The examiner further notes that 
App1 and Userl have different access conditions as they have different ACL values. 

Deo does not explicitly teach: 
C) a directory and one or more attributes associated with the directory; 
E) one or more cell groups under the directory each cell group having one or more 
associated attributes; 

K) wherein one or more attributes associated with the directory, cell group, or cell are 
associated with a passcode or key ; 

L) wherein the client terminal is adapted to use the passcode or key to access data in 
the directory, cell group, or cell. 

Carlisle, however, teaches "a directory and one or more attributes 
associated with the directory" as "Multi-user capability is provided by allowing Root to 
create a subdirectory below the root directory... only in the "passwd" file" (Column 5, 
lines 20-30), "one or more cell groups under the directory each cell group having 
one or more associated attributes" as "Multi-user capability is provided by allowing 
Root to create a subdirectory below the root directory... only in the "passwd" file" 
(Column 5, lines 20-30), " wherein one or more attributes associated with the 
directory, cell group, or cell are associated with a passcode or key " as "FIG. 2 
illustrates a structure that responds to this sensitivity of service providers. According to 
the structure of FIG. 2, Root owns the root directory and any number of files (directory 
files or normal files) that it wishes to create. For example, FIG. 2 includes a root 
directory file 10 and below it there are ".profile" file 1 1 , "passwd" file 12, "log" file 17, 
"filex" file 13, "filey" file 14, and "ID" file 18. A number of subdirectories are also found 
below root, with each being used as the "HOME" directory of a user (service provider), 
and also creates a password file for each such user HOME directory. For example, FIG. 
2 includes a directory file 15, named "htb" (the smart card's Holder), a directory file 20 
named "bankA", and a directory file 25 named "airlineA". Each one of the directories 
includes a "passwd" file (16, 21, and 26, respectively) below the associated user's 
HOME directory, as well as a ".profile" file. This placing of the password files has some 
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advantages but it is not a requirement. Importantly, ownership of each such password 
files is assigned to the user associated with that file and the directory above it. It may 
also be advantageous to grant ownership of files (directories) 15, 20 and 25 to the 
respective users" (Column 6, lines 30-51), and " wherein the client terminal is 
adapted to use the passcode or key to access data in the directory, cell group, or 
cell " as "Multi-user capability is provided by allowing Root to create a subdirectory 
below the root directory... only in the "passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claims 14, 33, and 52, Deo further teaches a system, secure token, 
and method comprising: 

A) wherein the one or more attributes permit a first set of operations by a first 
application (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 

2); 

B) wherein the one or more attributes permit a second set of by a second application 
(Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 2); 

C) wherein the first access condition is different from the second access condition 
(Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 2). 

The examiner notes that Deo teaches "wherein the one or more attributes 
permit a first set of operations by a first application" as "an access control list 
(ACL) can be associated... gain access to and perform file operations on the volatile 
files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes 
an ACL (access control list) table 204 that performs the security function of determining 
which users and/or applications have access to which files... and the like" (Column 4, 
lines 37-42). The examiner further notes that Deo teaches "wherein the one or more 
attributes permit a second set of by a second application" as "an access control list 
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(ACL) can be associated... gain access to and perform file operations on the volatile 
files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes 
an ACL (access control list) table 204 that performs the security function of determining 
which users and/or applications have access to which files... and the like" (Column 4, 
lines 37-42). The examiner further notes that Deo teaches "wherein the first access 
condition is different from the second access condition" as "an access control list 
(ACL) can be associated ...gain access to and perform file operations on the volatile 
files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes 
an ACL (access control list) table 204 that performs the security function of determining 
which users and/or applications have access to which files... and the like" (Column 4, 
lines 37-42). The examiner further notes that Figure 2 of Deo clearly shows an ACL 
table 204 with differing permission levels (see 1 and 4). The examiner further notes that 
App1 and Userl have different access conditions as they have different ACL values. 

Deo does not explicitly teach: 
A, B) associated with the directory. 

Carlisle, however, teaches "associated with the directory" as "Multi-user 
capability is provided by allowing Root to create a subdirectory below the root 
directory... only in the "passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1 , lines 59-62). 

Regarding claims 16, 35, 51, and 54, Deo further teaches a system comprising: 
A) wherein the one or more attributes associated with the cell permit a first set of 
operations on the contents of that cell by a first application (Column 3, lines 64-67- 
Column 4, lines 1-6, Column 4, lines 37-44, Figure 2); 
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B) wherein the one or more attributes associated with the cell permit a second set of 
operations on the contents of that cell by a second application (Column 3, lines 64-67- 
Column 4, lines 1-6, Column 4, lines 37-44, Figure 2); 

C) wherein the first access condition is different from the second access condition 
(Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 2). 

The examiner notes that Deo teaches "wherein the one or more attributes 
associated with the cell permit a first set of operations on the contents of that cell 
by a first application" as "an access control list (ACL) can be associated... gain access 
to and perform file operations on the volatile files 122" (Column 3, lines 66-67-Column 
4, lines 1-5) and 'The file system 118 includes an ACL (access control list) table 204 
that performs the security function of determining which users and/or applications have 
access to which files. ..and the like" (Column 4, lines 37-42). The examiner further 
notes that Deo teaches "wherein the one or more attributes associated with the 
cell permit a second set of operations on the contents of that cell by a second 
application" as "an access control list (ACL) can be associated... gain access to and 
perform file operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 
1-5) and 'The file system 118 includes an ACL (access control list) table 204 that 
performs the security function of determining which users and/or applications have 
access to which files... and the like" (Column 4, lines 37-42). The examiner further 
notes that Deo teaches "wherein the first access condition is different from the 
second access condition" as "an access control list (ACL) can be associated... gain 
access to and perform file operations on the volatile files 122" (Column 3, lines 66-67- 
Column 4, lines 1-5) and "The file system 118 includes an ACL (access control list) 
table 204 that performs the security function of determining which users and/or 
applications have access to which files... and the like" (Column 4, lines 37-42). The 
examiner further notes that Figure 2 of Deo clearly shows an ACL table 204 with 
differing permission levels (see 1 and 4). The examiner further notes that App1 and 
Userl have different access conditions as they have different ACL values. 
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Regarding claims 17, 36, and 55, Deo further teaches a system, secure token, 
and method comprising: 

A) wherein the secure token is a smart card (Column 1 , lines 6-8). 

The examiner notes that Deo teaches "wherein the secure token is a smart 
card" as "This invention relates to integrated circuit (IC modules, such as smart cards" 
(Column 1, lines 6-7). 

Regarding claims 19, 38, and 57, Deo further teaches a system, secure token, 
and method comprising: 

A) wherein the secure token is a static or native smart card (Column 3, lines 44-54). 

The examiner notes that Deo teaches "wherein the secure token is a static 
or native smart card" as "The operating system 1 14 includes a file system 118 that 
manages files stored on the smart card" (Column 3, lines 44-45). 

Regarding claim 20, Deo teaches a secure token comprising: 

B) wherein the one or more attributes are used to control access by the plurality of 
applications associated with a client (Column 3, lines 64-67-Column 4, lines 1-6, 
Column 4, lines 37-44, Figure 2) 

D) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2); and 

E) one or more cells under each cell group, each cell having one or more associated 
attributes, wherein the one or more attributes associated with a cell are used to control 
access to that cell by the plurality of applications (Column 3, lines 64-67-Column 4, lines 
1-6, Column 4, lines 37-44, Figure 2). 

F) wherein the one or more attributes permit a first application to access after a first 
access condition is satisfied (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, 
lines 37-44, Figure 2); 
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G) wherein the one or more attributes permit a second application to access after a 
second access condition is satisfied (Column 3, lines 64-67-Column 4, lines 1-6, 
Column 4, lines 37-44, Figure 2); 

H) wherein the first access condition is different from the second access condition 
(Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 2). 

The examiner notes that Deo teaches "wherein the one or more attributes are 
used to control access by the plurality of applications associated with a client " as 
"an access control list (ACL) can be associated... gain access to and perform file 
operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and 
'The file system 118 includes an ACL (access control list) table 204 that performs the 
security function of determining which users and/or applications have access to which 
files... and the like" (Column 4, lines 37-42). The examiner further notes that Deo 
teaches "one or more cells under each cell group, each cell having one or more 
associated attributes, wherein the one or more attributes associated with a cell 
are used to control access to that cell by the plurality of applications" as "an 
access control list (ACL) can be associated... gain access to and perform file operations 
on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file 
system 118 includes an ACL (access control list) table 204 that performs the security 
function of determining which users and/or applications have access to which files... and 
the like" (Column 4, lines 37-42). The examiner further notes that Deo teaches 
"wherein the one or more attributes permit a first application to access after a 
first access condition is satisfied" as "an access control list (ACL) can be 
associated... gain access to and perform file operations on the volatile files 122" 
(Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes an ACL 
(access control list) table 204 that performs the security function of determining which 
users and/or applications have access to which files... and the like" (Column 4, lines 37- 
42). The examiner further notes that Deo teaches "wherein the one or more 
attributes permit a second application to access after a second access condition 
is satisfied" as "an access control list (ACL) can be associated... gain access to and 
perform file operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 
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1-5) and "The file system 118 includes an ACL (access control list) table 204 that 
performs the security function of determining which users and/or applications have 
access to which files... and the like" (Column 4, lines 37-42). The examiner further 
notes that Deo teaches "wherein the first access condition is different from the 
second access condition" as "an access control list (ACL) can be associated... gain 
access to and perform file operations on the volatile files 122" (Column 3, lines 66-67- 
Column 4, lines 1-5) and "The file system 118 includes an ACL (access control list) 
table 204 that performs the security function of determining which users and/or 
applications have access to which files... and the like" (Column 4, lines 37-42). The 
examiner further notes that Figure 2 of Deo clearly shows an ACL table 204 with 
differing permission levels (see 1 and 4). The examiner further notes that App1 and 
Userl have different access conditions as they have different ACL values. 

Deo does not explicitly teach: 
A) a directory and one or more attributes associated with the directory; 
C, F, G) one or more cell groups under the directory each cell group having one or 
more associated attributes; 

I) wherein one or more attributes associated with the directory, cell group, or cell are 
associated with a passcode or key ; 

J) wherein the client is adapted to use the passcode or key to access data in the 
directory, cell group, or cell. 

Carlisle, however, teaches "a directory and one or more attributes 
associated with the directory" as "Multi-user capability is provided by allowing Root to 
create a subdirectory below the root directory... only in the "passwd" file" (Column 5, 
lines 20-30), "one or more cell groups under the directory each cell group having 
one or more associated attributes" as "Multi-user capability is provided by allowing 
Root to create a subdirectory below the root directory... only in the "passwd" file" 
(Column 5, lines 20-30), " wherein one or more attributes associated with the 
directory, cell group, or cell are associated with a passcode or key " as TIG. 2 
illustrates a structure that responds to this sensitivity of service providers. According to 
the structure of FIG. 2, Root owns the root directory and any number of files (directory 
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files or normal files) that it wishes to create. For example, FIG. 2 includes a root 
directory file 10 and below it there are ".profile" file 1 1 , "passwd" file 12, "log" file 17, 
"filex" file 13, "filey" file 14, and "ID" file 18. A number of subdirectories are also found 
below root, with each being used as the "HOME" directory of a user (service provider), 
and also creates a password file for each such user HOME directory. For example, FIG. 
2 includes a directory file 15, named "htb" (the smart card's Holder), a directory file 20 
named "bankA", and a directory file 25 named "airlineA". Each one of the directories 
includes a "passwd" file (16, 21, and 26, respectively) below the associated user's 
HOME directory, as well as a ".profile" file. This placing of the password files has some 
advantages but it is not a requirement. Importantly, ownership of each such password 
files is assigned to the user associated with that file and the directory above it. It may 
also be advantageous to grant ownership of files (directories) 15, 20 and 25 to the 
respective users" (Column 6, lines 30-51), and " wherein the client is adapted to use 
the passcode or key to access data in the directory, cell group, or cell " as "Multi- 
user capability is provided by allowing Root to create a subdirectory below the root 
directory... only in the "passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claim 32, Deo teaches a secure token comprising: 
B) wherein the one or more attributes are used to control access by the plurality of 
applications associated with a client terminal (Column 3, lines 64-67-Column 4, lines 1- 
6, Column 4, lines 37-44, Figure 2) 

D) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2); and 
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E) one or more cells under each cell group, each cell having one or more associated 
attributes, wherein the one or more attributes associated with a cell are used to control 
access to that cell by the plurality of applications (Column 3, lines 64-67-Column 4, lines 
1-6, Column 4, lines 37-44, Figure 2). 

F) wherein the one or more attributes associated with the cell permit a first set of 
operations on the contents of that cell by a first application (Column 3, lines 64-67- 
Column 4, lines 1-6, Column 4, lines 37-44, Figure 2); 

G) wherein the one or more attributes associated with the cell permit a second set of 
operations on the contents of that cell by a second application (Column 3, lines 64-67- 
Column 4, lines 1-6, Column 4, lines 37-44, Figure 2); 

H) wherein the first access condition is different from the second access condition 
(Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 2). 

The examiner notes that Deo teaches "wherein the one or more attributes are 
used to control access by the plurality of applications associated with a client 
terminal " as "an access control list (ACL) can be associated. . . gain access to and 
perform file operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 
1-5) and "The file system 118 includes an ACL (access control list) table 204 that 
performs the security function of determining which users and/or applications have 
access to which files... and the like" (Column 4, lines 37-42). The examiner further 
notes that Deo teaches "wherein the one or more attributes are used to control 
access by the plurality of applications" as "an access control list (ACL) can be 
associated... gain access to and perform file operations on the volatile files 122" 
(Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes an ACL 
(access control list) table 204 that performs the security function of determining which 
users and/or applications have access to which files... and the like" (Column 4, lines 37- 
42). The examiner further notes that Deo teaches "one or more cells under each cell 
group, each cell having one or more associated attributes, wherein the one or 
more attributes associated with a cell are used to control access to that cell by 
the plurality of applications" as "an access control list (ACL) can be associated . . . gain 
access to and perform file operations on the volatile files 122" (Column 3, lines 66-67- 
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Column 4, lines 1-5) and "The file system 118 includes an ACL (access control list) 
table 204 that performs the security function of determining which users and/or 
applications have access to which files... and the like" (Column 4, lines 37-42). The 
examiner further notes that Deo teaches "wherein the one or more attributes 
associated with the cell permit a first set of operations on the contents of that cell 
by a first application" as "an access control list (ACL) can be associated... gain access 
to and perform file operations on the volatile files 122" (Column 3, lines 66-67-Column 
4, lines 1-5) and "The file system 118 includes an ACL (access control list) table 204 
that performs the security function of determining which users and/or applications have 
access to which files... and the like" (Column 4, lines 37-42). The examiner further 
notes that Deo teaches "wherein the one or more attributes associated with the 
cell permit a second set of operations on the contents of that cell by a second 
application" as "an access control list (ACL) can be associated... gain access to and 
perform file operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 
1-5) and "The file system 118 includes an ACL (access control list) table 204 that 
performs the security function of determining which users and/or applications have 
access to which files... and the like" (Column 4, lines 37-42). The examiner further 
notes that Deo teaches "wherein the first access condition is different from the 
second access condition" as "an access control list (ACL) can be associated... gain 
access to and perform file operations on the volatile files 122" (Column 3, lines 66-67- 
Column 4, lines 1-5) and "The file system 118 includes an ACL (access control list) 
table 204 that performs the security function of determining which users and/or 
applications have access to which files... and the like" (Column 4, lines 37-42). The 
examiner further notes that Figure 2 of Deo clearly shows an ACL table 204 with 
differing permission levels (see 1 and 4). The examiner further notes that App1 and 
Userl have different access conditions as they have different ACL values. 

Deo does not explicitly teach: 
A) a directory and one or more attributes associated with the directory; 
C) one or more cell groups under the directory each cell group having one or more 
associated attributes; 
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I) wherein one or more attributes associated with the directory, cell group, or cell are 
associated with a passcode or key ; 

J) wherein the client terminal is adapted to use the passcode or key to access data in 
the directory, cell group, or cell. 

Carlisle, however, teaches "a directory and one or more attributes 
associated with the directory" as "Multi-user capability is provided by allowing Root to 
create a subdirectory below the root directory... only in the "passwd" file" (Column 5, 
lines 20-30), "one or more cell groups under the directory each cell group having 
one or more associated attributes" as "Multi-user capability is provided by allowing 
Root to create a subdirectory below the root directory... only in the "passwd" file" 
(Column 5, lines 20-30), " wherein one or more attributes associated with the 
directory, cell group, or cell are associated with a passcode or key " as "FIG. 2 
illustrates a structure that responds to this sensitivity of service providers. According to 
the structure of FIG. 2, Root owns the root directory and any number of files (directory 
files or normal files) that it wishes to create. For example, FIG. 2 includes a root 
directory file 10 and below it there are ".profile" file 11, "passwd" file 12, "log" file 17, 
"filex" file 13, "filey" file 14, and "ID" file 18. A number of subdirectories are also found 
below root, with each being used as the "HOME" directory of a user (service provider), 
and also creates a password file for each such user HOME directory. For example, FIG. 
2 includes a directory file 15, named "htb" (the smart card's Holder), a directory file 20 
named "bankA", and a directory file 25 named "airlineA". Each one of the directories 
includes a "passwd" file (16, 21, and 26, respectively) below the associated user's 
HOME directory, as well as a ".profile" file. This placing of the password files has some 
advantages but it is not a requirement. Importantly, ownership of each such password 
files is assigned to the user associated with that file and the directory above it. It may 
also be advantageous to grant ownership of files (directories) 15, 20 and 25 to the 
respective users" (Column 6, lines 30-51), and " wherein the client terminal is 
adapted to use the passcode or key to access data in the directory, cell group, or 
cell " as "Multi-user capability is provided by allowing Root to create a subdirectory 
below the root directory... only in the "passwd" file" (Column 5, lines 20-30). 
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It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claim 39, Deo teaches a method comprising: 
B) wherein the one or more attributes are used to control access by the plurality of 
applications associated with a client (Column 3, lines 64-67-Column 4, lines 1-6, 
Column 4, lines 37-44, Figure 2) 

D) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2); and 

E) one or more cells under each cell group, each cell having one or more associated 
attributes, wherein the one or more attributes associated with a cell are used to control 
access to that cell by the plurality of applications (Column 3, lines 64-67-Column 4, lines 
1-6, Column 4, lines 37-44, Figure 2). 

F) wherein the one or more attributes permit a first application to access after a first 
access condition is satisfied (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, 
lines 37-44, Figure 2); 

G) wherein the one or more attributes permit a second application to access after a 
second access condition is satisfied (Column 3, lines 64-67-Column 4, lines 1-6, 
Column 4, lines 37-44, Figure 2); 

H) wherein the first access condition is different from the second access condition 
(Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 2). 

The examiner notes that Deo teaches "wherein the one or more attributes are 
used to control access by the plurality of applications associated with a client " as 
"an access control list (ACL) can be associated... gain access to and perform file 
operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and 
"The file system 118 includes an ACL (access control list) table 204 that performs the 
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security function of determining which users and/or applications have access to which 
files... and the like" (Column 4, lines 37-42). The examiner further notes that Deo 
teaches "one or more cells under each cell group, each cell having one or more 
associated attributes, wherein the one or more attributes associated with a cell 
are used to control access to that cell by the plurality of applications" as "an 
access control list (ACL) can be associated... gain access to and perform file operations 
on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file 
system 118 includes an ACL (access control list) table 204 that performs the security 
function of determining which users and/or applications have access to which files... and 
the like" (Column 4, lines 37-42). The examiner further notes that Deo teaches 
"wherein the one or more attributes permit a first application to access after a 
first access condition is satisfied" as "an access control list (ACL) can be 
associated... gain access to and perform file operations on the volatile files 122" 
(Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes an ACL 
(access control list) table 204 that performs the security function of determining which 
users and/or applications have access to which files... and the like" (Column 4, lines 37- 
42). The examiner further notes that Deo teaches "wherein the one or more 
attributes permit a second application to access after a second access condition 
is satisfied" as "an access control list (ACL) can be associated . . . gain access to and 
perform file operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 
1-5) and "The file system 118 includes an ACL (access control list) table 204 that 
performs the security function of determining which users and/or applications have 
access to which files... and the like" (Column 4, lines 37-42). The examiner further 
notes that Deo teaches "wherein the first access condition is different from the 
second access condition" as "an access control list (ACL) can be associated. . . gain 
access to and perform file operations on the volatile files 122" (Column 3, lines 66-67- 
Column 4, lines 1-5) and "The file system 118 includes an ACL (access control list) 
table 204 that performs the security function of determining which users and/or 
applications have access to which files... and the like" (Column 4, lines 37-42). The 
examiner further notes that Figure 2 of Deo clearly shows an ACL table 204 with 
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differing permission levels (see 1 and 4). The examiner further notes that App1 and 
Userl have different access conditions as they have different ACL values. 

Deo does not explicitly teach: 
A) providing a directory and one or more attributes associated with the directory; 
C, F, and G) providing one or more cell groups under the directory each cell group 
having one or more associated attributes; 

I) wherein one or more attributes associated with the directory, cell group, or cell are 
associated with a passcode or key ; 

J) wherein the client is adapted to use the passcode or key to access data in the 
directory, cell group, or cell. 

Carlisle, however, teaches "providing a directory and one or more attributes 
associated with the directory" as "Multi-user capability is provided by allowing Root to 
create a subdirectory below the root directory... only in the "passwd" file" (Column 5, 
lines 20-30), "providing one or more cell groups under the directory each cell 
group having one or more associated attributes" as "Multi-user capability is 
provided by allowing Root to create a subdirectory below the root directory... only in the 
"passwd" file" (Column 5, lines 20-30), " wherein one or more attributes associated 
with the directory, cell group, or cell are associated with a passcode or key " as 
"FIG. 2 illustrates a structure that responds to this sensitivity of service providers. 
According to the structure of FIG. 2, Root owns the root directory and any number of 
files (directory files or normal files) that it wishes to create. For example, FIG. 2 includes 
a root directory file 10 and below it there are ".profile" file 1 1 , "passwd" file 12, "log" file 
17, "filex" file 13, "filey" file 14, and "ID" file 18. A number of subdirectories are also 
found below root, with each being used as the "HOME" directory of a user (service 
provider), and also creates a password file for each such user HOME directory. For 
example, FIG. 2 includes a directory file 15, named "htb" (the smart card's Holder), a 
directory file 20 named "bankA", and a directory file 25 named "airlineA". Each one of 
the directories includes a "passwd" file (16, 21, and 26, respectively) below the 
associated user's HOME directory, as well as a ".profile" file. This placing of the 
password files has some advantages but it is not a requirement. Importantly, ownership 
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of each such password files is assigned to the user associated with that file and the 
directory above it. It may also be advantageous to grant ownership of files (directories) 
15, 20 and 25 to the respective users" (Column 6, lines 30-51), and " wherein the client 
is adapted to use the passcode or key to access data in the directory, cell group, 
or cell " as "Multi-user capability is provided by allowing Root to create a subdirectory 
below the root directory... only in the "passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claims 58 and 61, Deo does not explicitly teach a method and secure 
token comprising: 

A) wherein the first application is associated with a first party and the second 
application is associated with a second party; and 

B) wherein the first and the second party have an existing business relationship; and 

C) agree to share data on the secure token according to agreed security controls. 

Carlisle, however, teaches "wherein the first application is associated with a 
first party and the second application is associated with a second party" as "It is 

quite possible for service providers to form cooperative alliances. Such alliances can 
specify various activities which are carried out in the smart cards whenever the smart 
card is accessed, or when the smart card is accessed by a particular user. The number 
of such possibilities is limitless, and the example below is merely illustrative. Assume, 
for example, that company A employs traveling salespeople who frequently need to 
purchase gasoline. A is likely to contract with O to issue a smart card for each of the 
salespeople (Holders) and request O to install A as a service provider and G as the 
gasoline provider. Sometime later, A may reach an agreement with bank B as a 
Provider of credit for the salespeople. That service can be remotely installed into all of 
the smart cards belonging to the salespeople by, for example, obtaining the cooperation 



Application/Control Number: 10/656,858 Page 29 

Art Unit: 2168 

of G. Specifically, A can request G to install a request for communication with O 
whenever a smart card interacts with G and found to have A as a user but not B as a 
user. All that G needs to do is modify the file that is executed when H logs in to 
communicate with G and direct the smart card to call O" (Column 16, lines 66-67- 
Column 17, lines 1-19), "wherein the first and the second party have an existing 
business relationship" as "It is quite possible for service providers to form cooperative 
alliances. Such alliances can specify various activities which are carried out in the smart 
cards whenever the smart card is accessed, or when the smart card is accessed by a 
particular user. The number of such possibilities is limitless, and the example below is 
merely illustrative. Assume, for example, that company A employs traveling 
salespeople who frequently need to purchase gasoline. A is likely to contract with O to 
issue a smart card for each of the salespeople (Holders) and request O to install A as a 
service provider and G as the gasoline provider. Sometime later, A may reach an 
agreement with bank B as a Provider of credit for the salespeople. That service can be 
remotely installed into all of the smart cards belonging to the salespeople by, for 
example, obtaining the cooperation of G. Specifically, A can request G to install a 
request for communication with O whenever a smart card interacts with G and found to 
have A as a user but not B as a user. All that G needs to do is modify the file that is 
executed when H logs in to communicate with G and direct the smart card to call O" 
(Column 16, lines 66-67-Column 17, lines 1-19), and "agree to share data on the 
secure token according to agreed security controls" as "It is quite possible for 
service providers to form cooperative alliances. Such alliances can specify various 
activities which are carried out in the smart cards whenever the smart card is accessed, 
or when the smart card is accessed by a particular user. The number of such 
possibilities is limitless, and the example below is merely illustrative. Assume, for 
example, that company A employs traveling salespeople who frequently need to 
purchase gasoline. A is likely to contract with O to issue a smart card for each of the 
salespeople (Holders) and request O to install A as a service provider and G as the 
gasoline provider. Sometime later, A may reach an agreement with bank B as a 
Provider of credit for the salespeople. That service can be remotely installed into all of 
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the smart cards belonging to the salespeople by, for example, obtaining the cooperation 
of G. Specifically, A can request G to install a request for communication with O 
whenever a smart card interacts with G and found to have A as a user but not B as a 
user. All that G needs to do is modify the file that is executed when H logs in to 
communicate with G and direct the smart card to call O" (Column 16, lines 66-67- 
Column 17, lines 1-19). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claim 59, Deo does not explicitly teach a method comprising: 
A) wherein the first application or the second application is a loyalty application. 

Carlisle, however, teaches "wherein the first application or the second 
application is a loyalty application" as "It is quite possible for service providers to 
form cooperative alliances. Such alliances can specify various activities which are 
carried out in the smart cards whenever the smart card is accessed, or when the smart 
card is accessed by a particular user. The number of such possibilities is limitless, and 
the example below is merely illustrative. Assume, for example, that company A 
employs traveling salespeople who frequently need to purchase gasoline. A is likely to 
contract with O to issue a smart card for each of the salespeople (Holders) and request 
O to install A as a service provider and G as the gasoline provider. Sometime later, A 
may reach an agreement with bank B as a Provider of credit for the salespeople. That 
service can be remotely installed into all of the smart cards belonging to the salespeople 
by, for example, obtaining the cooperation of G. Specifically, A can request G to install 
a request for communication with O whenever a smart card interacts with G and found 
to have A as a user but not B as a user. All that G needs to do is modify the file that is 
executed when H logs in to communicate with G and direct the smart card to call O" 
(Column 16, lines 66-67-Column 17, lines 1-19). 
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It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Regarding claim 60, Deo does not explicitly teach a method comprising: 
A) wherein the first application can access only that cell group while the second 
application can access that cell group and additional cell groups. 

Carlisle, however, teaches "wherein the first application can access only 
that cell group while the second application can access that cell group and 
additional cell groups" as "One aspect of the arrangement disclosed herein is that the 
smart card's issuer/owner (O) has a general knowledge of, and control over, the service 
providers whose "applications" are present on the smart card. First, O controls the 
establishment of a service provider's directory. Second, O can delete any directory at 
the holder's request, or whenever O gains access the smart card (with, or without, the 
holder's consent). Third, O is the only party who knows the identity of all the service 
providers who share the smart card, and various particulars about those service 
providers" (Column 14, lines 60-67-Column 15, lines 1-2) and "It is quite possible for 
service providers to form cooperative alliances. Such alliances can specify various 
activities which are carried out in the smart cards whenever the smart card is accessed, 
or when the smart card is accessed by a particular user. The number of such 
possibilities is limitless, and the example below is merely illustrative. Assume, for 
example, that company A employs traveling salespeople who frequently need to 
purchase gasoline. A is likely to contract with O to issue a smart card for each of the 
salespeople (Holders) and request O to install A as a service provider and G as the 
gasoline provider. Sometime later, A may reach an agreement with bank B as a 
Provider of credit for the salespeople. That service can be remotely installed into all of 
the smart cards belonging to the salespeople by, for example, obtaining the cooperation 
of G. Specifically, A can request G to install a request for communication with O 
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whenever a smart card interacts with G and found to have A as a user but not B as a 
user. All that G needs to do is modify the file that is executed when H logs in to 
communicate with G and direct the smart card to call O" (Column 16, lines 66-67- 
Column 17, lines 1-19). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

8. Claims 18, 37, and 56 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Deo et al. (U.S. Patent 6,970,891) and in view of Carlisle et al. (U.S. 
Patent 5,649,118) as applied to claims 1-2, 4-14, 16-17, 19-21, 23-28, 30-33, 35-36, 38- 
40, 42-52, 54-55, and 57-61 and further in view of Brittenham et al. (U.S. Patent 
6,880,084) 

9. Regarding claim 18, Deo teaches a system comprising: 

A) a client having a plurality of applications residing thereon (Column 3, lines 44-54); 
and 

B) a secure token having a storage architecture (Column 6, lines 27-34), wherein the 
storage architecture includes: 

D) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2) 

F) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2); and 

G) one or more cells under each cell group, each cell having one or more associated 
attributes, wherein the one or more attributes associated with a cell are used to control 
access to that cell by the plurality of applications (Column 3, lines 64-67-Column 4, lines 
1-6, Column 4, lines 37-44, Figure 2); 

H) wherein the secure token is a smart card (Column 1, lines 6-8). 
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The examiner notes that Deo teaches "a client having a plurality of 
applications residing thereon" as "The volatile files 122 make it possible for multiple, 
resident applications 1 12, as well as nonresident applications 116 that are downloaded 
for a particular sessions, to share the same data in volatile memory 106 (assuming the 
applications are authorized)" (Column 3, lines 49-54). The examiner further notes that 
Deo teaches "a secure token having a storage architecture" as "With this 
architecture, volatile data kept in volatile memory is no longer bound to a single 
application, but can be accessed by multiple applications" (Column 6, lines 27-29). The 
examiner further notes that Deo teaches "wherein the one or more attributes are 
used to control access by the plurality of applications" as "an access control list 
(ACL) can be associated... gain access to and perform file operations on the volatile 
files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes 
an ACL (access control list) table 204 that performs the security function of determining 
which users and/or applications have access to which files... and the like" (Column 4, 
lines 37-42). The examiner further notes that Deo teaches "one or more cells under 
each cell group, each cell having one or more associated attributes, wherein the 
one or more attributes associated with a cell are used to control access to that 
cell by the plurality of applications" as "an access control list (ACL) can be 
associated... gain access to and perform file operations on the volatile files 122" 
(Column 3, lines 66-67-Column 4, lines 1-5) and "The file system 118 includes an ACL 
(access control list) table 204 that performs the security function of determining which 
users and/or applications have access to which files... and the like" (Column 4, lines 37- 
42). The examiner further notes that Deo teaches "wherein the secure token is a 
smart card" as "This invention relates to integrated circuit (IC modules, such as smart 
cards" (Column 1, lines 6-7). 

Deo does not explicitly teach: 
C) a directory and one or more attributes associated with the directory; 
E) one or more cell groups under the directory each cell group having one or more 
associated attributes; 
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J) wherein one or more attributes associated with the directory, cell group, or cell are 
associated with a passcode or key ; 

K) wherein the client is adapted to use the passcode or key to access data in the 
directory, cell group, or cell. 

Carlisle, however, teaches "a directory and one or more attributes 
associated with the directory" as "Multi-user capability is provided by allowing Root to 
create a subdirectory below the root directory... only in the "passwd" file" (Column 5, 
lines 20-30), "one or more cell groups under the directory each cell group having 
one or more associated attributes" as "Multi-user capability is provided by allowing 
Root to create a subdirectory below the root directory... only in the "passwd" file" 
(Column 5, lines 20-30), " wherein one or more attributes associated with the 
directory, cell group, or cell are associated with a passcode or key " as "FIG. 2 
illustrates a structure that responds to this sensitivity of service providers. According to 
the structure of FIG. 2, Root owns the root directory and any number of files (directory 
files or normal files) that it wishes to create. For example, FIG. 2 includes a root 
directory file 10 and below it there are ".profile" file 11, "passwd" file 12, "log" file 17, 
"filex" file 13, "filey" file 14, and "ID" file 18. A number of subdirectories are also found 
below root, with each being used as the "HOME" directory of a user (service provider), 
and also creates a password file for each such user HOME directory. For example, FIG. 
2 includes a directory file 15, named "htb" (the smart card's Holder), a directory file 20 
named "bankA", and a directory file 25 named "airlineA". Each one of the directories 
includes a "passwd" file (16, 21, and 26, respectively) below the associated user's 
HOME directory, as well as a ".profile" file. This placing of the password files has some 
advantages but it is not a requirement. Importantly, ownership of each such password 
files is assigned to the user associated with that file and the directory above it. It may 
also be advantageous to grant ownership of files (directories) 15, 20 and 25 to the 
respective users" (Column 6, lines 30-51), and " wherein the client is adapted to use 
the passcode or key to access data in the directory, cell group, or cell " as "Multi- 
user capability is provided by allowing Root to create a subdirectory below the root 
directory... only in the "passwd" file" (Column 5, lines 20-30). 
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It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Deo and Carlisle do not explicitly teach: 

1) wherein the smart card is an open platform smart card. 

Brittenham, however, teaches "wherein the smart card is an open platform 
smart card" as "embodiments of the present invention may support Java Card (with 
Open Platform support), multi-application operating system for smart cards (MULTOS) 
or Smart Card for Windows" (Column 7, lines 60-64). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Brittenham's would have allowed Deo's and Carlisle's to provide for the coordinating 
of the efforts of multiple enterprises on a single smart card to enable a hierarchy, as 
noted by Brittenham (Column 1, lines 50-54). 

Regarding claim 37, Deo teaches a secure token comprising: 
B) wherein the one or more attributes are used to control access by the plurality of 
applications associated with a client (Column 3, lines 64-67-Column 4, lines 1-6, 
Column 4, lines 37-44, Figure 2) 

D) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 

2) ; and 

E) one or more cells under each cell group, each cell having one or more associated 
attributes, wherein the one or more attributes associated with a cell are used to control 
access to that cell by the plurality of applications (Column 3, lines 64-67-Column 4, lines 
1-6, Column 4, lines 37-44, Figure 2); 

F) wherein the secure token is a smart card (Column 1, lines 6-8). 
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The examiner notes that Deo teaches "wherein the one or more attributes are 
used to control access by the plurality of applications associated with a client " as 

"an access control list (ACL) can be associated... gain access to and perform file 
operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and 
"The file system 118 includes an ACL (access control list) table 204 that performs the 
security function of determining which users and/or applications have access to which 
files... and the like" (Column 4, lines 37-42). The examiner further notes that Deo 
teaches "one or more cells under each cell group, each cell having one or more 
associated attributes, wherein the one or more attributes associated with a cell 
are used to control access to that cell by the plurality of applications" as "an 
access control list (ACL) can be associated... gain access to and perform file operations 
on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file 
system 118 includes an ACL (access control list) table 204 that performs the security 
function of determining which users and/or applications have access to which files... and 
the like" (Column 4, lines 37-42). The examiner further notes that Deo teaches 
"wherein the secure token is a smart card" as "This invention relates to integrated 
circuit (IC modules, such as smart cards" (Column 1, lines 6-7). 

Deo does not explicitly teach: 
A) a directory and one or more attributes associated with the directory; 
C) one or more cell groups under the directory each cell group having one or more 
associated attributes; 

H) wherein one or more attributes associated with the directory, cell group, or cell are 
associated with a passcode or key ; 

I) wherein the client is adapted to use the passcode or key to access data in the 
directory, cell group, or cell. 

Carlisle, however, teaches "a directory and one or more attributes 
associated with the directory" as "Multi-user capability is provided by allowing Root to 
create a subdirectory below the root directory... only in the "passwd" file" (Column 5, 
lines 20-30), "one or more cell groups under the directory each cell group having 
one or more associated attributes" as "Multi-user capability is provided by allowing 
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Root to create a subdirectory below the root directory... only in the "passwd" file" 
(Column 5, lines 20-30), " wherein one or more attributes associated with the 
directory, cell group, or cell are associated with a passcode or key " as "FIG. 2 
illustrates a structure that responds to this sensitivity of service providers. According to 
the structure of FIG. 2, Root owns the root directory and any number of files (directory 
files or normal files) that it wishes to create. For example, FIG. 2 includes a root 
directory file 10 and below it there are ".profile" file 11, "passwd" file 12, "log" file 17, 
Tilex" file 13, "filey" file 14, and "ID" file 18. A number of subdirectories are also found 
below root, with each being used as the "HOME" directory of a user (service provider), 
and also creates a password file for each such user HOME directory. For example, FIG. 
2 includes a directory file 15, named "htb" (the smart card's Holder), a directory file 20 
named "bankA", and a directory file 25 named "airlineA". Each one of the directories 
includes a "passwd" file (16, 21, and 26, respectively) below the associated user's 
HOME directory, as well as a ".profile" file. This placing of the password files has some 
advantages but it is not a requirement. Importantly, ownership of each such password 
files is assigned to the user associated with that file and the directory above it. It may 
also be advantageous to grant ownership of files (directories) 15, 20 and 25 to the 
respective users" (Column 6, lines 30-51), and " wherein the client is adapted to use 
the passcode or key to access data in the directory, cell group, or cell " as "Multi- 
user capability is provided by allowing Root to create a subdirectory below the root 
directory... only in the u passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Deo and Carlisle do not explicitly teach: 
G) wherein the smart card is an open platform smart card. 

Brittenham, however, teaches "wherein the smart card is an open platform 
smart card" as "embodiments of the present invention may support Java Card (with 
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Open Platform support), multi-application operating system for smart cards (MULTOS) 
or Smart Card for Windows" (Column 7, lines 60-64). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Brittenham's would have allowed Deo's and Carlisle's to provide for the coordinating 
of the efforts of multiple enterprises on a single smart card to enable a hierarchy, as 
noted by Brittenham (Column 1, lines 50-54). 

Regarding claim 56, Deo teaches a method comprising: 
B) wherein the one or more attributes are used to control access by the plurality of 
applications associated with a client (Column 3, lines 64-67-Column 4, lines 1-6, 
Column 4, lines 37-44, Figure 2) 

D) wherein the one or more attributes are used to control access by the plurality of 
applications (Column 3, lines 64-67-Column 4, lines 1-6, Column 4, lines 37-44, Figure 
2); and 

E) one or more cells under each cell group, each cell having one or more associated 
attributes, wherein the one or more attributes associated with a cell are used to control 
access to that cell by the plurality of applications (Column 3, lines 64-67-Column 4, lines 
1-6, Column 4, lines 37-44, Figure 2); 

F) wherein the secure token is a smart card (Column 1 , lines 6-8). 

The examiner notes that Deo teaches "wherein the one or more attributes are 
used to control access by the plurality of applications associated with a client " as 
"an access control list (ACL) can be associated... gain access to and perform file 
operations on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and 
"The file system 118 includes an ACL (access control list) table 204 that performs the 
security function of determining which users and/or applications have access to which 
files... and the like" (Column 4, lines 37-42). The examiner further notes that Deo 
teaches "one or more cells under each cell group, each cell having one or more 
associated attributes, wherein the one or more attributes associated with a cell 
are used to control access to that cell by the plurality of applications" as "an 
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access control list (ACL) can be associated... gain access to and perform file operations 
on the volatile files 122" (Column 3, lines 66-67-Column 4, lines 1-5) and "The file 
system 118 includes an ACL (access control list) table 204 that performs the security 
function of determining which users and/or applications have access to which files... and 
the like" (Column 4, lines 37-42). 

Deo does not explicitly teach: 
A) providing a directory and one or more attributes associated with the directory; 
C) providing one or more cell groups under the directory each cell group having one or 
more associated attributes. 

H) wherein one or more attributes associated with the directory, cell group, or cell are 
associated with a passcode or key ; 

I) wherein the client is adapted to use the passcode or key to access data in the 
directory, cell group, or cell. 

Carlisle, however, teaches "providing a directory and one or more attributes 
associated with the directory" as "Multi-user capability is provided by allowing Root to 
create a subdirectory below the root directory... only in the "passwd" file" (Column 5, 
lines 20-30), "providing one or more cell groups under the directory each cell 
group having one or more associated attributes" as "Multi-user capability is 
provided by allowing Root to create a subdirectory below the root directory... only in the 
"passwd" file" (Column 5, lines 20-30), " wherein one or more attributes associated 
with the directory, cell group, or cell are associated with a passcode or key " as 
"FIG. 2 illustrates a structure that responds to this sensitivity of service providers. 
According to the structure of FIG. 2, Root owns the root directory and any number of 
files (directory files or normal files) that it wishes to create. For example, FIG. 2 includes 
a root directory file 10 and below it there are ".profile" file 1 1 , "passwd" file 12, "log" file 
17, "filex" file 13, "filey" file 14, and "ID" file 18. A number of subdirectories are also 
found below root, with each being used as the "HOME" directory of a user (service 
provider), and also creates a password file for each such user HOME directory. For 
example, FIG. 2 includes a directory file 15, named "htb" (the smart card's Holder), a 
directory file 20 named "bankA", and a directory file 25 named "airlineA". Each one of 
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the directories includes a "passwd" file (16, 21, and 26, respectively) below the 
associated user's HOME directory, as well as a ".profile" file. This placing of the 
password files has some advantages but it is not a requirement. Importantly, ownership 
of each such password files is assigned to the user associated with that file and the 
directory above it. It may also be advantageous to grant ownership of files (directories) 
15, 20 and 25 to the respective users" (Column 6, lines 30-51), and " wherein the client 
is adapted to use the passcode or key to access data in the directory, cell group, 
or cell " as "Multi-user capability is provided by allowing Root to create a subdirectory 
below the root directory... only in the "passwd" file" (Column 5, lines 20-30). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Carlisle's would have allowed Deo's to provide for access control at higher hierarchical 
levels including subfolders and folders in order to restrict access to some providers on a 
smart card, as noted by Carlisle (Column 1, lines 59-62). 

Deo and Carlisle do not explicitly teach: 
G) wherein the smart card is an open platform smart card. 

Brittenham, however, teaches "wherein the smart card is an open platform 
smart card" as "embodiments of the present invention may support Java Card (with 
Open Platform support), multi-application operating system for smart cards (MULTOS) 
or Smart Card for Windows" (Column 7, lines 60-64). 

It would have been obvious to one of ordinary skill in the art at the time the 
invention was made to combine the teachings of the cited references because teaching 
Brittenham's would have allowed Deo's and Carlisle's to provide for the coordinating 
of the efforts of multiple enterprises on a single smart card to enable a hierarchy, as 
noted by Brittenham (Column 1, lines 50-54). 

Response to Arguments 
10. Applicant's arguments filed 03/14/2007 have been fully considered but they are 
not persuasive. 

Applicants argue on page 15 that "Obviousness has not been established. 
Here, the primary reference, Deo et al., fails to teach or suggest at least the 
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following limitation from independent claim 1: "wherein the one or more 
attributes associated with the directory, cell group, or cell are associated with a 
passcode or a key, wherein the client is adapted to use the passcode or key to 
access data in the directory, cell group, or cell." The other independent claims 
recite a similar limitation". However, the examiner wishes to state that the secondary 
reference of Carlisle teaches the aforementioned limitations, as indicated in the 
rejections of the independent claims. 

Applicants argue on page 16 that "There is also no motivation to modify Deo 
et al. to include passcodes or keys. Obviousness can only be established by 
combining or modifying the teachings of the prior art to produce the claimed 
invention where there is some teaching, suggestion, or motivation to do so... if 
one were to modify Deo et al. to arrive at the inventions of the pending claims, 
one would render an essential part of Deo et al.'s system (i.e., the file system 118 
and its associated access control list) obsolete. As explained at col. 3, line 44 to 
col. 4, line 7, the file system 118 is essential to the operation of Deo et al.'s 
smartcard and resides inside of the smartcard. If one were to modify Deo et at. to 
include a client terminal that uses passcodes or keys to access data on a secure 
token, there would be no need for Deo et al.'s file system 118 and its access 
control list, since access to directories, cell groups, and cells would already be 
restricted". In response to applicant's argument that there is no suggestion to combine 
the references, the examiner recognizes that obviousness can only be established by 
combining or modifying the teachings of the prior art to produce the claimed invention 
where there is some teaching, suggestion, or motivation to do so found either in the 
references themselves or in the knowledge generally available to one of ordinary skill in 
the art. See In re Fine, 837 F.2d 1071, 5 USPQ2d 1596 (Fed. Cir. 1988)and In re 
Jones, 958 F.2d 347, 21 USPQ2d 1941 (Fed. Cir. 1992). In this case, Carlisle teaches 
the amendments made to the independent claims, and the motivation is found within 
Carlisle to do so (see "access control at higher hierarchical levels including subfolders 
and folders in order to restrict access to some providers on a smart card", as noted by 
Carlisle (Column 1, lines 59-62). 
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Conclusion 

1 1 . The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

U.S. Patent 6,199,762 issued to Hohle on 13 March 2001 . The subject matter 
disclosed therein is pertinent to that of claims 1-2, 4-14, 16-21, 23-33, 35-40, 42-52, and 
54-61 (e.g., methods to secure and use smart cards). 

U.S. Patent 6,367,01 1 issued to Lee et al. on 02 April 2002. The subject matter 
disclosed therein is pertinent to that of claims 1-2, 4-14, 16-21, 23-33, 35-40, 42-52, and 
54-61 (e.g., methods to secure and use smart cards). 

U.S. Patent 5,682,027 issued to Bertina et al. on 28 October 1997. The subject 
matter disclosed therein is pertinent to that of claims 1-2,4-14, 16-21, 23-33, 35-40, 42- 
52, and 54-61 (e.g., methods to secure and use smart cards). 

U.S. Patent 6,481,632 issued to Wentker et al. on 19 November 2002. The 
subject matter disclosed therein is pertinent to that of claims 1-2, 4-14, 16-21 , 23-33, 
35-40, 42-52, and 54-61 (e.g., methods to secure and use smart cards). 

12. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 

§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 
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Contact Information 



1 3. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Mahesh Dwivedi whose telephone number is (571) 272- 
2731. The examiner can normally be reached on Monday to Friday 8:20 am - 4:40 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Tim Vo can be reached (571) 272-3642. The fax number for the 
organization where this application or proceeding is assigned is (571) 273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 



Mahesh Dwivedi 



Patent Examiner 



May 21, 2007 
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